实验环境使用华为eNSP(1.2.00.500),交换机版本V2R1,在LSW1做访问策略,拓扑如下:
PC1:10.0.80.254; PC2:10.0.89.254; PC3:10.0.87.254; PC4:10.0.88.254;
Traffic-filter
acl 3000
rule 87 deny ip source 10.0.80.0 0.0.0.255 destination 10.0.87.0 0.0.0.255
rule 88 permit ip source 10.0.80.0 0.0.0.255 destination 10.0.88.0 0.0.0.255
在接口G0/0/1下使用traffic-filter调用acl3000,结果为
PC1-->PC3 不通; PC1-->PC4 通; PC1-->PC2 通;
Traffic-po